On Mon, Jul 03, 2006 at 09:15:15PM -0300, Giancarlo Razzolini wrote:
> Henning Brauer wrote:
> >
> > skip steps and set skip have noting to do with each other.
> > set skip basically disables pf on a per-interface basis.
> > skip steps is an optimization in rule processing you can safely ignore.
> > it Just Works in the background and saves you CPU cycles :)
>
> It does not have much to do with the topic but, if i do enable skip on
> an interface, if i send packets to the skipped interface with tags on
> them, these tags will be lost? I'm asking because i did some tagging and
> sent to the ftp-proxy running in the lo0 interface, and the tags were
> gone when the ftp-proxy did the connection on behalf of the user. I need
> this to do qos.
If this is pre-3.9 ftp-proxy, well, it should be obvious that it works
that way, no? Use multiple ftp-proxy processes, running under different
usernames/groups, and tag on username/group.
Joachim
